Y
Hacker News
new
|
ask
|
show
|
jobs
by
jamieweb
2096 days ago
I use it to test my Content-Security-Policy by crawling my whole site and capturing any violation reports that are sent.
2 comments
doopy1
2096 days ago
Mind sharing your script?
link
jamieweb
2092 days ago
This has been absorbed into an internal repo now, but the original version that I wrote a couple of years ago is here:
https://gitlab.com/jamieweb/travis-ci_csp-tester/
link
doopy1
2088 days ago
Cheers!
link
peteypao
2094 days ago
What's wrong with just plain old curl?
link
jamieweb
2092 days ago
cURL doesn't load subresources or honour Content-Security-Policy headers as this is beyond the scope of what it's supposed to do.
link